CVE Watchtower β Back to CVE ListCVE-2025-67636NVDDescriptionA missing permission check in Jenkins 2.540 and earlier, LTS 2.528.2 and earlier allows attackers with View/Read permission to view encrypted password values in views.Severity LevelMEDIUM (4.3)Published Date10/12/2025Last Modified17/12/2025Exploitation Status????Referenceshttps://www.jenkins.io/security/advisory/2025-12-10/#SECURITY-1809